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Abstract. This paper proposes a geometric solution to the problem of 
prime decomposability of concurrent processes first explored by R. Milner 
and F. MoUer in [MM93]. Concurrent programs are given a geometric 
semantics using cubical areas, for which a unique factorization theorem is 
proved. An effective factorization method which is correct and complete 
with respect to the geometric semantics is derived from the factorization 
theorem. This algorithm is implemented in the static analyzer ALCOOL. 



1 Introduction: Parallel Programming Problem 

This paper aims at introducing some new static analysis technology for concur- 
rent programs. The work presented here gives a new insight into the problem of 
decomposition of processes, which was first explored by R. Milner and F. Moller 
in [MM93] . The main new results are an algorithm maximally decomposing con- 
current programs into independent processes (Section 4) and the proof that this 
prime decomposition is unique in the considered class of programs (Theorem 2). 
They are derived from a study of algebraic properties of cubical areas. 

Given an associative and commutative operator || for parallel composition of 
two processes (with the empty process as unit), decomposing a concurrent pro- 
gram P into a multiset {Pi, P„} such that P = Pi ||...||P„ and the P^s are inde- 
pendent has several interests. For instance the decomposition may be relevant for 
the allocation of processors to subprograms. Another important concern is the 
static analysis of concurrent programs, whose complexity grows exponentially 
with the number of concurrent processes: finding independent subprograms that 
can be analyzed separately could dramatically decrease the global complexity 
of the static analysis. Hence this paper aims at finding the finest decomposition 
(and proving its existence) for a wide class of concurrent programs. 

Let us first take a look at a non trivial example of independent processes, 
in the so-called PV language introduced by E. W. Dijkstra [Dij68] as a simple 
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framework for the study of concurrency with shared resources. The only instruc- 
tions are P{name) and V{name)^, where name is an identifier which refers to 
a resource. The idea is to have some common pool of resources which can be 
taken (with P) and released (with V) by concurrent processes. The resources 
are formalized by semaphores which, depending on their arity, can be held si- 
multaneously by a certain number of processes (arity n allows at most n — 1 
simultaneous processes). 

Now suppose c is the name of a ternary semaphore, which means it can be 
held by at most two processes, and a, b are the names of binary semaphores, also 
called mutex for mutual exclusion. 

Example 1. 

E :=wi^ Pa.Pc.Vc.Va 
II TTa = Pb.Pc.Vc.Vb 
II 773 = Pa.Pc.Vc.Va 
II TTi = Pb.Pc.Vc.Vb 

A naive syntactic analysis would stamp this program as undccomposable since 
all processes share the resource c, but the following finer analysis can be made: 
thanks to mutex a (respectively b) , the processes tti and tts (respectively 7r2 and 
774) cannot both hold an occurrence of the resource c at the same time. Then 
there are never more than two simultaneous requests over c, which means that 
the instructions Pc and Vc play actually no role in determining the semantics of 
the program. And without c, S can be split in two independent systems (they use 
disjoint resources). Basically, this example is based on the fact that semaphores 
are not the real resources, but mere devices used to guard their access. And it 
may be that some guards are redundant. 

This work is based on a geometric semantics for concurrency. The semantics 
for PV programs was implicitly given in [Dij68], then explicited by Carson et 
al.[CR87]. Roughly speaking, the instructions of a process are pinned upon a 1- 
dimensional "directed" shape, in other words track along which the instructions 
of the program to execute are written. If N sequential processes run together, 
one can consider their N instruction pointers as a multi-dimensional control 
point. 

Although we have made the construction explicit for PV programs only, 
the result applies to any synchronisation or communication mechanism whose 
geometric interpretation is a so-called cubical area (the notion is formalized in 
Section 3.5). See for instance [GH05] for the geometric semantics of synchronisa- 
tion barriers, monitors and synchronous or asynchronous communications (with 
finite or infinite message queues): their geometrical shape is the complement 
of an orthogonal polyhedron [BMP99,Tha09], which is a special case of cubical 
area. 

Outline of the paper. 

The paper is organized as follows. Section 2 provides the mathematics of the 
geometric semantics, detailed for PV programs. Section 3 establishes the link 

^ P and V stand for the dutch words "Pakken" (take) and "Vrijlaten" (release) 



between algebraic properties of the semantics and independence of subprograms, 
and then states and proves prime decomposability theorems for algrebraic frame- 
works encompassing the geometric semantics (Theorems 1 and 2). Section 4 
describes the corresponding algorithm and implementation as well as a detailed 
example and some benchmarks. 



2 The Geometric Semantics 

The geometric semantics of a PV program is a subset of the finite dimensional 
real vector space whose dimension is roughly speaking the number A'' of processes 
running concurrently. Then each process is associated with a coordinate of M^. 
Yet given a mutex a, the instructions P( a) and V(a) that occur in the k^^ process 
should be understood as opening and closing parentheses or more geometrically 
as the least upper bound and the greatest lower bound of an interval Ik of R. The 
forbidden area generated by a mutex a is thus the finite union of hyperrectangles* 
of the following form (with k < k') 

]R+ X • ■ • X M+ X 4 X M+ X • • • X M+ X /fc/ X M+ X • • ■ X M+ 

^ V ' 

product of N terms 

For example, P(a) .V(a) || P(a) .V(a) is a pro- 
gram written in PV language. Assuming that a yj-^-j 
is a mutex (semaphore of arity 2), its geometric 
model is (M+)2\[l,2p. Intuitively, a point p in 
[1,2[^ would correspond to the situation where 
both processes hold the semaphore a, which is '5^ 
forbidden by the semantics of mutices. ^ ^ 

In the sequel of this section we formalize the PV language syntax as well as the 
construction of the geometric semantics. Denote the positive half-line [0,-|-oo[ 
by R+. For each a G N\{0, 1} let Sa be an infinite countable set whose elements 
are the semaphores of arity a of the PV language. A PV process is a finite 
sequence on the alphabet 

A:= {P{s),V{s) I sgU^«} 

a>2 

and a PV program is a finite (and possibly empty) multiset of PV processes. 

The parallel operator then corresponds to the multiset addition therefore it is 
associative and commutative ^. Given a semaphore s and a process tt, the se- 
quences {xk)ke^i and {yk)keN are recursively defined as follows: set y_i = 
and 



* however we will more likely write "cube" instead. 
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— Xk = min{n G N | n > yk-i and 7r(n) is P{s)} 

— yk = min{n G N | n > Xfe and 7r(n) is V{s)} 



with the convention that min0 = oo, n{n) denotes the n*"" term of the process 
TT and its first term is 7r(l). Then, the busy cirea of s in tt is^ 

Bs{t^) ■■= U [xk,yk[ 
ken 

Actually this description requires some extra assumptions upon the way instruc- 
tions are interpreted. Namely a process cannot hold more than one occurrence of 
a given ressource. Thus a process already holding an occurrence of a semaphore 
s ignores any instruction P{s), and similarly a process holding no occurrence of 
s ignores any instruction V{s). Then denote by : M — >■ M the characteristic 
function of Bg defined by 

* ^ \0 otherwise 

Because the sequence tt is finite, there exists some k such that Xk = oo and for 
any such k and any k' > fc, one also has Xk' = oo. In particular, if the instruction 
P{s) does not appear in tt, then Bs{'7t) is empty and is the null map. The 
geometric model of a PV program with N processes running concurrently is a 
subpospace of [0, +oo[-'^ defined as follows: 

- Call n = (tti, . . . , TTjv) the program to modelize. 

- Given a semaphore s of arity a define the forbidden area of s in iT as 

:={^e[0,+oo[^ I Xt-^>a} 

N 

where = (a;i, . . . ,a;jv), xt = (xlS-'-'Xl") and ■ = EXs'(a;i)- The 

i=l 

value xt • ^ indicates how many occurrences of the semaphore s are held when 
the instruction pointer is at position Note that F, is a finite union of hyper- 
rectangles which may be empty even if s appears in the program iT. In the end, 
the forbidden area of the program J7 is the following union over S the union 
of all the sets Sa- 

ses 

Because there are finitely many resource names s appearing in a PV program, 
there are finitely many non empty set Fs- Hence the previous union is still a 
finite union of hyperrectangles. The state space or geometric model of U is 
then [0, +(X)[^\F, and is denoted by |77]. Remark that the geometric model is 
also a finite union of hyperrectangles. 



Including the greatest lower bound and removing the least upper one is the math- 
ematical interpretation of the following convention: the changes induced by an in- 
struction are effective exactly when the instruction pointer reaches it. 



In other words, the state space of 77 is the set of positions of the "multi 
dimensional instruction pointer" for which the number of occurrences of each 
semaphore s is strictly below its arity a. If 77 is made of N concurrent process, 
this space is a A''- dimensional enclidean space with (cubical) holes. As an exam- 
ple, Figure 1 shows the construction of the geometric model of the PV program 
P{a)P{b)V{b)V{a) || P{b)P{a)V{a)V{b) (refered to as the swiss flag). Figure 2 
gives a simplified version of Example 1 fitting in three dimensions. 



Fig. 1. Construction of a geometric model: the Swiss flag 
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Fig. 2. Example in three dimensions 




Intuitively, the graphs pictured iicrc correspond to the essential components of the state 
space, see [GH07] for developments on this topic. The dark grey cube on the left picture 
is the forbidden area of the semaphore c, which is contained in the forbidden area of 
the mutex a (in the full -and 4D- example E the forbidden area of c is contained in 
the union of the forbidden areas of a and b). 



3 The Problem of Unique Decomposition 



Now that the geometric semantics of programs is defined, let us refocus on the 
main goal: finding the independent parts of a concurrent program. Hence the 
question: what does independence mean in this geometrical setting? 

3.1 Parallel Composition vs Cartesian Product 

A general definition has to be given for independence: say a program 11 is 
independent from another program il' when its behaviour is unaffected by par- 
allel composition with 77', whatever the way U' is executed. That means, the 
presence of 77', as well as its instruction pointer, has no effect on the semantics of 
77. A geometric translation of this assertion is: in the geometric model of 77||77', 
the cylinder'' over any state of 77' (i.e. the subspace of all points with given fix 
coordinates for the 77' component) is equal to the model of 77. 

Hence two programs 77 and 77' of geometric models |77] and |77'| are inden- 
pendent if and only if the geometric model |77||77'] of their parallel composition 
is isomorphic to the cartesian product |77] x |77']. Thus the decompositions of 
a program correspond to the factorizations if its geometric model (with respect 
to the cartesian product). Next subsection reminds some algebraic settings and 
results needed for a notion like factorization to make sense. 

3.2 Free Commutative Monoids 

The reader not familiar with this notion can refer for instance to [Lan02]. Let 
M be a commutative monoid. Any element of M which has an inverse is called 
a unit. A non unit element a; of M is said to be irreducible when for all y and 
z in Af, a X = yz then y or z is a unit. The set of irreducible elements of M is 
denoted by 7(M). 

For any elements x and y oi M, say x divides y when there is an element x' 
of M such that xx' = y. A non unit element x of M is said to be prime when 
for all y and z in M, if a; divides yz then x divides y or x divides z. The set of 
prime elements of M is denoted by P{M). 

Given a set X, the collection of maps (p from X to N such that {x G 
X I (j){x) ^ 0} is finite, together with the pointwise addition, forms a com- 
mutative monoid whose neutral element is the null map: we denote it by 7^(-'^). 
Yet, given any subset X of a commutative monoid M, the following map 

^^: F{X) 

is a well-defined morphism of monoids. A well-known result asserts that the 
following are equivalent [Lan02]: 



Categorists would write "fibre" instead of "cylinder" . 



1. the mapping <l>j^ is an isomorphism of monoids 

2. the set I{M) generates^ M and I{M) = P{M) 

3. any element of M can be written as a product of irreducible elements in a 
unique way up to permutation of terms (unique decomposition property). 

In this case M is said to be a free commutative monoid. 

Two standard examples of free commutative monoids are given by the set of 
non zero natural numbers N\{0} together with multiplication (the unit is 1 and 
the irrcdiiciblc elements arc the prime mimbcrs) and the set of natural numbers 
N together with addition (the unit is and the only irreducible clement is 1). 

However, neither the multiplicative monoid Z\{0} nor the additive group Z 
are free commutative monoids since they both contain a non trivial unit, namely 
— 1 in both cases. 

Also note that all the non zero elements of the additive monoid M+ are primes 
though it does not contain a single irreducible element. 

A more intricate phenomenon arises with polynomials [HN50]: the (multi- 
plicative) commutative monoid N[X]\{0} of non zero polynomials with natural 
coefficients is not free. Indeed, although each element of N[X]\{0} is a product 
of irreducible polynomials these decompositions are not unique: we have 

(1 + X){1 + X^ + X'^) = (1 + X^){1 + X + X^) 

where all of the polynomials 1 + X, 1 + AT^ + A'', 1 + A^ and 1 + A + A^ are 
irreducible (which is not the case in the monoid of polynomials with coefficients 
in Z, indeed the ring Z[Ar] is factorial [Lan02]). 

3.3 Cartesian Product and Commutation 

The geometric model of a concurrent program is a set of points in an euclidean 
space of finite dimension. Thus each point can be represented by the tuple of 
its coordinates, and a geometric model becomes a set of tuples (of same length 
which corresponds to the dimension of the space). The cartesian product on such 
structures is the following: 

XxY = { {xi,...,Xn,yi,--,yk) \ {xi,...,Xn) & X,{yi,...,yk) €Y } 

However, this operator is not commutative whereas the parallel composition of 
programs should be so. Thus, in order to model parallel composition, we make 
the operator x commutative monoid through quotient by permutation of co- 
ordinates. In the next subsection we prove a freeness theorem for a monoid 
generalizing this idea: tuples of (real) coordinates are replaced by words over 
an arbitrary (potentially infinite) alphabet. The geometric model of a PV pro- 
gram therefore belongs to a free commutative monoid and thus admits a unique 
decomposition of irreducible elements, from which the processes factorization is 
deduced. 

^ X C M generates M when all its elements can be written as a product of elements of 
X. The product of the empty set being defined as the neutral element. Remark then 
that "/(M) generates M" implies that the only unit of M is its neutral element. 



3.4 Homogeneous Sets of Words 



Let A be a set called the alphabet. The non commutative monoid of words A* 
consists on the finite sequences of elements of A together with concatenation. 
Given words w and w' of length n and n', the word w * w' of length n + n' is 
defined by 

, ( Wk if 1 ^ k ^ n 

{w*w)k = ^^,^_^ if n + l^k^n + n' 

The length of a word w is also refered to as £{w). A subword of m; is a word of 
the form w o (j) where (/> is a strictly increasing map {1, . . . , n} — {!,..., i{w)}. 
Hence a subword of w is also entirely characterized by the image of the increasing 
map (p i-C- by a subset of {1, ... , (.{w)}. If A is the image of (j) then we write wo A 
instead of w o 0. 

The n**^ symmetric group 6„ (the group of permutations of the set {!,..., n}) 
acts on the set of words of length n by composing on the right, that is for all 
cr € &n and all word w of length n we have 

a ■w:=wo(j = (w;cr(i) • • ■ ^^(n)) 

The concatenation extends to sets of words. Given 5, S' C A*, define 

S*S' ■.= {w*w' \ w&S\w' & S'} 

Remark that this concatenation of sets corresponds to the cartesian product. 

The set V{A*) of subsets of A* is thus endowed with a structure of non 
commutative monoid whose neutral element is {e}: the singleton containing the 
empty word. Note that the empty set is the absorbing element of ^(A*), that 
is for all 5 C A* we have 

0*5 = 5*0 = 

A subset H of A* is said to be homogeneous when all the words it contains 
share the same length n. By analogy with the geometric construction, n is called 
the dimension of H and denoted by d{H). The symmetric group (S„ acts on the 
set of homogeneous set of dimension n in a natural way by applying the same 
permutation to all words: 

a ■ H := {a ■ w \ w G H} 

The homogeneous subsets of A* form a sub-monoid Vh{^*) of P{A*) and 
can be equipped with an equivalence relation as follows: write H H' when 
d{H) = d{H') = n and there exists a G 6„ such that H' = a ■ H . Moreover, 
for two permutations cr € &n and a' G ©„' , define the juxtaposition u (g) cr' G 
©n+n' as: 



(T{k) if 1 ^ fc ^ n 

{a'{k-n))+n if n+l^k^n + n' 



A Godement-like exchange law is satisfied, which ensures that is actually a 
congruence: 

(a-H)* (a' ■ H') = {a ® a') ■ {H * H') 

Hence the quotient Vh (A* ) / ~ from which the absorbing element has been re- 
moved is still a monoid called the homogeneous monoid over A and denoted 
by 'H(A). Moreover the homogeneous monoid is commutative and its only unit is 
the singleton {e}. Remark that if the alphabet A is a singleton (resp. the empty 
set) then the homogeneous monoid ?^(A) is isomorphic to (N, +,0) (resp. the 
null monoid). 

Theorem 1. For any set A the homogeneous monoid over A is free. 

Proof. We check the conditions 1-3 which characterize the free commutative 

monoids (see Section 3.2). Since d{H * H') = d{H) + d{H') we deduce from a 
straightforward induction on the dimension of elements of Hi A) that they can 
all be written as products of irreducible elements: 7(^(A)) generates 'H(A). 

Now suppose H is an irreducible element of H(A) which divides Hi * H2 and 
pick S, Si and ^2 respectively from the equivalence classes H, Hi and i?2. Define 
n = d{H), rii = d{Hi) and 712 = d{H2), and remark that n = rii + n2. There 
exists a G &n and some S3 such that cr • (5*1 * ^2) = S * S3 in VhiA*). Suppose 
in addition that H does not divide Hi nor H2, then we have Ai C {1, 
and A2 C {l,...,n2} s.t. ^ 0, ^2 ^ and a{Ai U A'2) = {!,..., n} where 
A'2 := {a + rii | a £ A2}. Then we have a non trivial factoring S — S'l* S2 where 

S'l := {w o Ai I w € S'l} and S'2 := {w o A2 \ w € S2} 

This contradicts irreducibility of H. Hence H divides Hi or H2 and thus H is 
prime. So any irreducible element of ?{(A) is prime: I{'H{A)) C P{'H{A)). 

Finally, suppose H is sl prime element of H(A) such that H = Hi * H2. In 
particular H divides Hi * H2, and since H is prime it divides Hi or H2. Both 
cases being symmetrical, suppose H divides Hi. In particular d{H) < d{Hi). On 
the other hand d{H) = d{Hi) + d{H2)- and thus d{H2) < 0. Dimensions being 
natural numbers, we deduce that d{H2) = and then that H2 = {e}. Hence H 
is irreducible, and I{U{A)) = P{U{A)). 

One of the worthy feature of the construction is that any binary relation o over 
■P/j(A) which is compatible with the product and satifies 

VS, S' e Pfc(A) {d{S) = d{S') = n and S o S" ^ Va G 6„ (a ■ 5) o (ct • S')) 

can be extended to a relation on 7{(A) which is still compatible with the product. 
Actually it suffices to set H o H' when d{H) = d(H') = n and there exists a 
representative S oi H and a representative S' of H' such that for all a G 6„ we 
have {a ■ S)o {a ■ S'). In addition, if the relation o satisfies 

\/S,S' G Vh{A) 5oS" d{S) = d{S') 

then the quotient map is compatible with o and its extension. The relation of 
inclusion C over Vh (A) obviously satisfies these properties and therefore extends 
to n{A). 



3.5 Cubical Areas 



A cube of dimension n is a word of length n on the alphabet I of non-empty 
intervals of M. The elements of 'H{I) are called the cubical coverings. Further- 
more the homogeneous monoid 'H(X) is endowed with a prcordcr arising from 
the inclusion on I. Indeed, given two sets of cubes of the same length S and S' 
we write S =4 S' when for all cubes C G S there exists a cube C € S' such that 
C C C". The relation =<; provides the monoid V{I) with a preorder that can be 
extended to 'H(I) by setting H =4 H' when d{H) = d{H') = n and there exists a 
representative S of H and a representative S' of H' such that for all a € 6„ we 
have {a ■ S) ^ {a ■ S'). We now establish a Galois connection between {'H{M.), C) 
and ('H(I), =4). Given a cubical covering F wc define j{F) as 



Furthermore 7 is a morphism of monoids and if F =<; F' then 7(-F') C ^{F'). 
Conversely, given some S in Vhi^*) the collection of n-dimensional cubes C 
such that CCS, ordered by inchision, is a semilattice whose maximal elements 
are called the maximal cubes of S. The set Ms of maximal cubes of S is 
homogeneous and for all a e S„, a ■ Ms = M^.s- Then given H e ■H(R) we 
define a{H) as 



Furthermore a is a morphism of monoids and if H C H' then a{H) C a{H'). 
Then we have a Galois connection: 

Proposition 1. 70a = \dti(j^^ and id7i(i) =4 ao-y. 

Given H G ?^(M) and F e 'H(I) wc say that F is a cubical covering of H when 
7(F) = H. The cubical areas are the elements H of ^{{M.) which admit a, finite 
cubical covering. The collection of cubical areas (resp. finite cubical coverings) 
forms a sub- monoid Are of ?{(R) (resp. Gov of T-L{T)). The restrictions of the 
morphisms 7 and a to Gov and Are induce another Galois connection. 

Proposition 2. 700 = id^^e and \dcov =^ a o 7. 

Moreover, the morphisms 7 and a of Proposition 2 induce a pair of isomorphisms 
of commutative monoids between Are and the collection of fixpoints of a o 7. A 
submonoid of a free commutative monoid may not be free. Yet, under a simple 
additional hypothesis this pathological behaviour is no more possible. We say 
that a submonoid P of a monoid M is pure when for all a;, y e M, x * y e P 
X G P and y € P. 

Lemma 1. Every pure submonoid of a free commutative monoid is free. 



Proof. Let P be a pure submonoid of a free commutative monoid M. Let p be an 
element of P written as a product xi - ■ - Xn of irreducible elements of M. Each 



{[jc\SGF} 



ces 




Xi is obviously an irreducible element of P so any element of P can be written 
as a product of irreducible elements of P. Furthermore any irreducible element 
of P is also an irreducible element of M because P is pure in M. It follows that 
any elements of P can be written as a product of irreducible elements of P in a 
unique way i.e. P is free. 

Then we have: 

Theorem 2. The commutative monoid of cubical areas is free and has infinitely 
many irreducible elements. 



Proof. Let X and X' be two elements of 'H{'M.) and suppose X * X' belongs to 
Are. Since both a and 7 are morphisms of monoids wc have a o j[X * X') = 
a o 7(X) *ao 7(X') which is finite. It follows that both a o j{X) and a o 7(X') 
are finite. Hence X and X' actually belongs to Are, which is thus free as a pure 
submonoid of 'H(R). 

4 Effective Factoring of Cubical Areas 

Beyond their theoretical usefulness, the maximal cubes provide the data struc- 
ture which allows to handle algorithmically cubical areas, as in the static analyzer 
ALCOOL which is devoted to the study of parallel programs. 

4.1 Implementation 

We need an algorithm which performs decompositions in H(A), its implementa- 
tion is directly based on the proof of the Theorem 1: H & 'H(A) is reducible if 

and only if there exists some representative S oi H which admits a non trivial 
decomposition in 7'/((A*). In order to describe the algorithm we define 

SoA:={woA\weS} 

for any S G Ph{A*) and A C {1, d(S')}. Moreover for w' G A* with £{w') < 
d{S), and A'^ the complement of A (in {1, ...,d{S)}), we define the set of words 

^{w',A,S):={woA''\w€S and SoA = w'} 

Then the class [/S o A] e ?^(A) divides H if and only if for all w' £ S o A one has 
^{w', A, S) = [So A% In the monoid ?^(A) we thus have 

[5 o A] * [5 o A'^] = H 

Then we look for some divisor of H by testing all the non empty subsets A of 
{1, . . . , d{S)} according to the following total ordering 

A<,A' when |yl| < or {\A\ = \A'\ and \A\ Ciex 



where Ciex is the lexicographic ordering. Doing so, we know that if A is the first 
value such that [S o A] divides H, then [S o A] is irreducible. Moreover we have 
d{[S o A]) = \A\ and for all Hq, Hi e ^(A), d{Ho * Hi) = d{Ho) + d{Hi) hence 
we can suppose 

, . , d(H) 
\A\^^ + l 

The software ALCOOL is entirely written in OCaml. The complexity of the decom- 
position algorithm implemented in it is exponential in the dimension n of the 
cubical area since it checks all the subsets of {0, . . . , n — 1}. However the compu- 
tation time actually devoted to the decomposition is rather small with regard to 
the global execution time required by the whole analysis. Indeed the algorithm 
which builds the state space of the program, though it has the same theoretical 
complexity as the decomposition algorithm, has to handle heavier structures. 



4.2 A detailed example 

We treat the case of the program E given in Example 1. Its geometric model 
is given on the left hand side of Figure 3. Applying the permutation (2,3) we 
obtain the right hand side set. 



Fig. 3. Cubical area of Example 1 
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1 [4,-[*[0,l[*[0,-[*[0,-[ 


II [4,-[*[0,- 


[*[0,1 


[*[0,-[ 


1 [4,-[*[4,-[*[0,-[*[0,-[ 


II [4,-[*[0,- 


[*[4,- 


[*[0,-[ 


1 [4,-[*[0,-[*[0,-[*[0,l[ 


II [4,-[*[0,- 


[* [0,- 


[* [0,1[ 


1 [4,-[*[0,-[*[0.-[*[4,-[ 


II [4.-[*[0.- 


[* [0.- 


[*[4.-[ 


1 [0,-[*[0,l[+[0,l[*[0,-[ 


II [0,-[*[0,l 


[* [0,1 


[* [0,-[ 


1 [0,-[*[0,l[*[4,-[*[0,-[ 


II [0,-[*[4,- 


[*[0,1 


[*[0,-[ 


1 [0,-[*[0,-[*[0,l[*[0,l[ 


II [0,-[*[0,l 


[* [0,- 


[* [0,1[ 


1 [0,-[*[0,-[*[0,l[*[4,-[ 


II [0,-[*[0.1 


[* [0,- 


[*[4,-[ 


1 [0,-[*[4,-[*[0,l[*[0,-[ 


II [0,-[*[0,l 


[*[4,- 


[*[0,-[ 


1 [0,-[*[4,-[*[4,-[*[0,-[ 


II [0,-[*[4,- 


[*[4,- 


[*[0,-[ 


1 [0,-[*[0,-[*[4,-[*[0,l[ 


II [0,-[*[4,- 


[*[0,- 


[*[0,1[ 


1 [0,-[*[0,-[*[4,-[*[4,-[ 


II [0,-[*[4,- 


[* [0,- 


[* [4,-[ 



Then we can check that the (right hand side of Figure 3) cubical area can be 
written as 

([0,l[*[0,-[ II [4,-[*[0,-[ II [0,-[*[0,l[ II [0,-[*[4,-[)^ 



Then we have 

(2,3).{{1,2},{3,4}} = {{1,3},{2,4}} 

and it follows that in the program S the sets of processes {771,773} and {772,774} 
run independently from each other. 

4.3 BenchmEtrks 

We describe some programs upon which the algorithm has been tested. The 
program Sni,...,nk is made of k groups of processes: for alH € {1, /c} it contains 
rii copies of the process 

P{ai).P{b).V{b).V{ai) 

where a, is a mutcx and h is a semaphore of arity k+1. All processes then share 
the resource b, but as for S in Example 1 the k groups are actually independent. 
On the other hand the program 17^^ „^ is the same as Sni,...,nk but with b 
of arity only fc, which forbids any decomposition. The n-philosophers programs 
implement the standard n dining philosophers algorithm. 

The benchmark table of Figure 4 has been obtained using the Unix command 
time which is not accurate. Hence these results have to be understood as an over- 
approximation of the mean execution time. It is also worth remarking that our 



Fig. 4. Benchmarks 
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No 


8 philosophers 


3.5 


No 
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21 


No 


10 philosophers 


152 


No 
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Time (in sec.) 


Decomp. 


Example 


Time (in sec.) 


Decomp. 


£^2,2 


0.1 


{1,3}{2,4} 


£"2,2 


0.1 


No 


£"2,2,2 


0.1 


{1,4}{2,5}{3,6} 


£"2,2,2 


0.3 


No 


■£3,3 


0.13 


{1,3,5}{2,4,6} 


£"3,3 


0.52 


No 


£"2,2,2,2 


0.13 


{1,5}{2,6}{3,7}{4, 8} 


£"2,2,2,2 


7.1 


No 


£^4,4 


1 


{1,3,5,7}{2,4,6,8} 


£"4,4 


33 


No 


£"3,3,3 


1.5 


{1,4,7}{2,5,8}{3,6,9} 


£"3,3,3 


293 


No 


£^4,5 


6.1 


{1,3,5,7}{2,4,6,8} 


£"4,5 


327 


No 


£^6,5 


50 


{1,3,5,7,9}{2,4,6,8, 10} 


£"b,6 


2875 


No 



algorithm is efficient when the cubical area to decompose is actually a carte- 
sian product of several irreducible cubical areas of small dimension. This remark 
should be compared with the fact that the standard decomposition algorithm of 
integer into primes is very efiicient on products of small prime numbers. 



5 Conclusion 



Related work. 

The problem of decomposition of concurrent programs in CCS-style has been 
studied in [GM92] and [MM93]. By the possibility of using semaphores of arbi- 
trary arity, our work seems to go beyond this previous approach. Also note that 
the silent and synchronous communication mechanism of CCS can be given a 
straightforward geometric interpretation which falls in the scope of the present 
discussion. However, the link between bisimilarity in CCS and isomorphic geo- 
metric interpretations is still to be explored to make clear the relations between 
these works. 

In [LvO05] B. Luttik and V. van Oostrom have characterized the commuta- 
tive monoids with unique decomposition property as those which can be provided 
with a so-called decomposition order. In the case where the property holds, the 
divisibility order always fits. Yet, there might exist a more convenient one. Un- 
fortunately, in the current setting the authors are not aware of any such order 
yielding direct proofs. Nevertheless it is worth noticing that this approach is ac- 
tually applied for decomposition of processes in a normed ACP theory for which 
a convenient decomposition order exists. 

Conclusion. 

This paper uses a geometric semantics for concurrent programs, and presents 
a proof of a unique decomposition property together with an algorithm working 
at this semantic level (Theorem 2). The main strength of this work is that it 
applies to any concurrent program yielding a cubical area. Example of features 
allowed in this setting are: semaphores, synchronisation barriers, synchronous as 
well as asynchronous communications (with finite or infinite message queues), 
conditional branchings. In fact we can even consider loops provided we replace 
the set I of intervals of the real line M by the set A of arcs of the circle. 

Future work. 

Actually, a cubical area naturally enjoys a pospace^ structure. Pospaces are 
among simplest objects studied in Directed Algebraic Topology. In particular, a 
cubical area is associated with its category of components [FGIIR04,GH05,Hau06] 
and [GH07], which is proven to be finite, loop-free^" and in most cases connected. 
Then, as the cubical areas do, these categories together with cartesian product 
form a free commutative monoid. It is worth noticing this is actually the gener- 
alization of a result concerning finite posets which has been established in the 
early fifties [Has51]. Therefore a program il can be decomposed by lifting the 
decomposition of the category of components of its geometric model |7J|. In 
general, the relation between the decomposition of a cubical area and the one of 
its category of components is a theoretical issue the authors wish to investigate. 

Another important concern is a clarification of the control constructs com- 
patible with cubical areas: replacing in some dimensions the intervals of the real 

® shorthand for "partially ordered spaces" [N;icf>l] . 

^° Loop-free categories were introuced in [Hae91,Hae92] as "small categories without 
loop" or "scwols". 



line by the arcs of the circle as mentioned above corresponds to a global loop, 
but some richer structures may be useful. 

A final point of interest is the investigation of the exact relation between our 
semantic results and the syntactic ones of [GM92,MM93,LvO05]. Indeed they 
use CCS'-like syntaxes to describe some classes of edge-labelled graphs modulo 
bisimilarity, whereas the category of components of our models correspond to 
some other graphs modulo directed homotopy. Hence the question: what is in 
this setting the relation between bisimilarity and homotopy? 

References 

[BMP99] O. Bournez, O. Maler and A. Pnueli. Orthogonal polyhcdra: Representation 
and computation. In Hybrid Systems: Computation and Control. Springer, 1999. 

[CR87] S. D. Carson and P. F. Reynolds Jr. The geometry of semaphore programs. 
ACM Transactions on Programming Languages and Systems, 9(1):25 53, 1987. 

[Dij68] Edsger W. Dijkstra. Cooperating sequential processes. In Programming Lan- 
guages: NATO Advanced Study Institute, pages 43-112. Academic Press, 1968. 

[FGHR04] Lisbeth Fajstrup, Eric Goubault, Emmanuel Haucourt and Martin Raufien. 
Component categories and the fundamental category. APCS, 12(1):81-108, 2004. 

[GH05] E. Goubault and E. Haucourt. A practical application of geometric semantics 
to static analysis of concurrent programs. CONCUR'05, LNCS 3653, 2005. 

[GH07] Eric Goubault and Emmanuel Haucourt. Component categories and the fun- 
damental category II. APCS, 15(4), 2007. 

[GM92] Jan Friso Groote and Faron Moller. Verification of Parallel Systems via De- 
composition. CONCUR '92, 62-76, 1992. 

[Hae91] Andre Haefliger. Complexes of groups and orbihedra. In Croup theory from a 
geometrical viewpoint, pp. 504-540. World Scientific, 1991. 

[Hao92] Andre Haefliger. Extension of complexes of groups. Annales de I'institut 
Fourner, 42(l-2):275-311, 1992. littp://www.numdain.org/ 

[Has51] Junji Hashimoto. On direct product decomposition of partially ordered sets. 
Annals of Mathematics, (54):315-318, 1951. 

[HN50] Junji Hashimoto and Tadasi Nakayama. On a problem of Garrett Birkhoff. In 
Proceedings of the American Mathematical Society, volume 1, pp. 141-142, 1950. 

[Hau06] Emmanuel Haucourt. Categories of components and Loop-free categories. 
Theory and Applications of Categories, 16(27):736-770, 2006. 

[Lan02] Serge Lang Algebra, 4*'' corrected printing. Graduate Texts in Mathematics. 
Springer, 2002. 

[LvO05] B. Luttik and V. van Oostrom. Decomposition orders: another generalisation 
of the fundamental theorem of arithmetic. TCS, 335(2-3):147-186, 2005. 

[MM93] Robin Milner and Faron Moller. Unique Decomposition of Processes. TCS, 
107(2) :357-363, 1993. 

[Nac65] Leopoldo Nachbin. Topology and Order, volume 4 of Van Nostrand Mathe- 
matical Studies. Van Nostrand, Princeton, 1965. 

[Tha09] Dang Thao. Methods and Tools for Computer Aided Design of Embedded 
Systems. HDR Thesis, Chapter 5. 2009. 

[Win95] Glynn Winskel. Handbook of Logic in Computer Science vol.4 : Semantic 
Modelling. Chapter 1. Oxford University Press, 1995. 



